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CLEAN VERSION OF AMENDMENTS 
IN THE SPECIFICATION 

Please enter the following amendments: 



1. Please amprfd pages 1 of the original specification, to read as follows. 




RECEIVED 



TITLE JUL 2 a 2003 

COPY PROTECTION SYSTEM Technology Center 21 00 

FOR PORTABLE STORAGE MEDIA 



CLAIM FOR PRIORITY 

This application makes reference to, incorporates the same herein, and claims all rights 
accruing thereto under 35 U.S.C. § 1 1 9 through our patent applications entitled The Digital Content 
Encryption Apparatus And Method Thereof earlier filed on the 24 lh day of September 1998 in the 
Korean Industrial Property Office and there duly assigned Serial Nos. 1 998/39808 and 1 998/39809. 



FIELD OF THE INVENTION 

The present invention is generally related to encryption processes and apparatus, and, more 
particularly, to secure and robust processes and apparatus for the generation and use of keys in the 
transmission and replay of digital information for licensed Secure Digital Music Initiative (SDMI) 
compliant modules such as personal computers and SDMI compliant portable devices in conjunction 
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manage to obtain via the system. 

Also, it is difficult to prevent the illegal copy of the supplied digital contents or the CODEC 
recorded on the portable medium if the portable medium is copied after the digital content has been 
supplied to a user and recorded on the portable medium. 

In particular, the MP3 which is the audio data of the above digital contents is downloaded 
"I to the first content output unit as well as the second content output unit such as an MP3 player and 
then reproduced. In the meantime, the MP3 is downloaded to a content storage unit such as a 
smartmedia card built in the first content output unit, and the MP3 downloaded in the content storage 
unit is reproduced through the second content output unit. 

However, as stated above, there is a drawback in that the digital data downloaded to the first 
and second content output units and the content storage unit are easily copied to be illegally 
distributed 

SUMMARY OF THE INVENTION 

It is therefore, one object of the present invention to provide improvements in cryptographic 
processes and apparatus. 

It is another object to provide a secure and robust digital encryption process and apparatus. 

It is yet another object to provide digital encryption processes and apparatus endowing a 
system with secure and robust copy protection for a licensed secure digital music initiative compliant 
module such as personal computers and portable devices such as disk and DVD players in 
conjunction with Internet service provider and a certificate authority. 
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It is still yet a further object to provide encryption, transmission and reception protocols 
enabling encryption, transmission and decryption of digital information received from a transmission 
system. 

It is an additional object to provide encryption, transmission and reception protocols enabling 
encryption and transmission of digital information received from a transmission system by using 
multiple keys to encrypt the digital information, and decryption and replay of the digital information 
at the terminal of the user by using a plurality of keys, one of which is common to the multiple keys. 



It is still yet a further object to provide encryption, transmission and reception protocols 
enabling encryption and transmission of digital information received from a transmission system, 
by using key information, a user's key, and a temporary validation key, and decryption and replay 
of the digital information at the terminal of the user by using the key information and user 
authorization information. 

It is also an object to provide a more secure cryptograph and process for transmitting 
information to a terminal of a user who has requested the information. 

It is also a further object to provide a cryptograph and process that reliably restricts the ability 
of a registered subscriber who has validly obtained information from an information provider, to 
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page 5 of the original specification, to read as follows 
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The second content output unit such as a portable device outputs the first registration request 
signal to the certificate authority and stores the manufacturer key and the manufacturer key data 
inputted from the certificate authority. 

In addition or alternatively, the present invention may use a physical address of a bad sector 
formed in the portable recordable medium during the manufacturing process, encrypts a header of 
the encrypted digital contents stored in the portable recordable medium, and records the encrypted 
header on the physical address of the bad sector of the portable recordable medium for preventing 
an illegal copy of the downloaded digital contents through a terminal after the digital contents have 
been downloaded. 

BRIEF DESCRIPTION OF THE DRAWINGS 

A more complete appreciation of this invention, and many of the attendant advantages 
thereof, will be readily apparent as the same becomes better understood by reference to the following 
detailed description when considered in conjunction with the accompanying drawings in which like 
reference symbols indicate the same or similar components, wherein: 

Fig. 1 is a block diagram illustrating the overall architecture of an implementation of the 
principles of the present invention; 

Fig. 2 is a block diagram illustrating a registration by an original equipment manufacture of 
a portable device with a certificate authority; 

Fig. 3 is a block diagram showing the registration of Internet service provider's registration 
with a certificate authority; 
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Fig. 4 is a block diagram showing the registration of a personal computer and a portable 
device with an Internet service provider; 

Fig. 5 is a block diagram showing usage rules governing a database of a right management 



i 

system 

•t 



^Y°) ' Fig. 6 is an exemplified format; 

Fig. 7 is a block diagram showing the basic architecture for various inputs; 
Fig. 8 is a block diagram showing control of outsource import; and 
Fig. 9 is a block diagram showing a copy protection system for portable media. 



7. Please £et€te page 7 of the original specification, except the title of the section 
"DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS". 

8. Please del^te^the^tirety on page 8 of the original specification. 

9. Please d^teFigure 5-1 on page 9 and amend pages 9 of the original specification, 
to read as follows. 



For the removal of some ambiguities, in this section, we define some terminologies and list 
up some abbreviated words for a simple description. 

First, we have to distinguish the two words, "Portability" and "Transferability" of a content. 
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Portability means that a content in a portable media (PM) can be played in any portable 
device (PD). 

Transferability means that "portability" plus "upload of a content is allowed from a portable 
medium to even an LCM", in this case the content's uploadability is to be controlled by check-in/out 
system and its transferability status. 

The digital contents which are used in the present invention mean all data including audio, 
video data, as well as character data such as song words, movie caption, and the like to be provided 
through internet. 

Herein after we use the following abbreviated words. 

CA stands for Certificate Authority (e.g., secure digital music initiative (SDMI), or other trust 
third party). 

LCM stands for Licensed SDMI Compliant Module. 
PD stands for SDMI Compliant Portable Device. 
PDFM stands for Portable Device Functional Module. 



ISP stands for Internet Service Provider (including Content Provider via the Internet). 
PM stands for Portable Media (SDMI Compliant Storage Media). 

Furthermore, here are presented some notations to be used in the following sections. Even 




. Please amend page 10 of the original specification, to read as follows 
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ECC - Elliptic Curve Cryptosystem 

CA ), respectively. 

Ce rtc .«)-AC ert if,a.eforaPu H .cKe y PubKe yA ,ss„ed b! ,CA. 



X 



MK, 



ID 



, . The Manufacturer Key within a PD 
- The Indicator of a Manufacturer Key. 



CK . Th , sis asec Ure (secre.)c h »„e, k e y which i sse«up^ee»PDa„ (i LCM. 

ECpH(A0) - A random secret value (key) shared Derw 

Diffie-Hellman Key Exchanging Protocol. 

E ^.0-S^cKe yE ^o n o f ac„^C by *n 8 a S ec re ,e y , t . 

A1F - Algorithm Identifying Field 
API - Applied Program Interface 
CCS - Copy Control Status 
CDF - Content Description Field 
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CEK - Content Encryption Key 

CertCA (PubKeyA) - Certificate (Data) for PubKeyA issued by CA 
CHI - Copyright Holder Information Field 
CTC - Copyright, Transfer, Check-in/Check-out 
ECC - Elliptic Curve based Cryptosystem 
A EC DH(ISP,LCM) - random sec,* vaiue (key) shared between ,SP and L.CM by EHiptic 

- Curve (Cryp.osys.em) based Diffte-HeHman Key Exchanging Pro«oco, 
^ ECENC-EHip.ica.rve-basedEncrypdonofaconten.byu.i.izingapubHckey 

EMC - Symmetric Key Encryption of a content by utilizing a secret key 
ICL - Import Control Layer 

ID A - Identifier of A 

IP - Information Provider; 

. j . , „ mntent Provider via the network 
ISP - Internet Service Provider includmg Content Provi 

LCM - Licensed SDMI Compliant Module 
MKIT - Manufacturer Key Information Table 
MKPD - Manufacturer Key within a portable device 
PCS - Playback Control Status 

PD - SDMI Compliant Portable Device 

PDFM - Portable Device Functional Module 

PKC - Public Key Cryptosystem 

PM - Portable Media (SDMI Complaint Storage Media) 
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PryKeyA, PubKeyA - Private Key and Public Key of A (A may be LCM, PD, ISP, CA, and 
the like) 

RMF - Right Management Field > , 

RMS-DB - Right Management System-Data Base 

RNG - Random Number Generation Unit 



^1 SDMI - Secure Digital Music Initiative 



g^) / SH - Secret Header 

SNAKE - Symmetric Key Encryption Algorithm, which is very effective for both software 
and hardware implements and has been world-wide cryptanalized 
SOI - Source Originator Indicator Field; 
UTD - Update Token Data. 



In the above items the Elliptic Curve based Public Key Cryptosystem is just an example as 
a candidate of Public Key Cryptosystem, and so any public key cryptosystem, for example RSA, can 
be used instead of it. But we suggest that SDMI Compliant EMD System (Electronic Music 
Distributing System) adopt the ECC System for the next generation portable devices, since ECC can 
be efficiently implemented in such small devices with low cost. 

Also, an internet service provider includes a content provider as well as an information 
provider via network. A personal computer or an LCM is examples as a candidate of the first 
content output unit. A portable device such as MP3 is an example of a second content output unit. 
A portable medium is a general recording medium including smart media. 
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FIG. 1 is a schematic view for explaining a system for preventing an illegal copy of digital 
contents according to an embodiment of the present invention. 

A certificate authority 110 generates a first table having the manufacturer key and the 
manufacturer key data, and a second table having an identifier (ID) of the portable device 1 50, a 
token, T, and the information (ENC(MK PD , T)) of the token encrypted by the manufacturing key. 
That is, the certificate authority 1 10 generates the manufacturer key, MK PD , and its certificate data, 
Cert(MK PD ), in accordance with a first registration request signal 1 2 1 inputted from a manufacturer 
120 of portable devices 150, and outputs a manufacturer key and a manufacturer key data to the 
manufacturer 120. 

The manufacturer 1 20 of the portable devices 1 50 outputs the registration request signal 1 2 1 
to the certificate authority 1 10 and receives the manufacturer key and the manufacturer key data 
generated by certificate authority 1 10 in accordance with the first registration request signal 121 . 

An internet service provider (ISP) 1 30 including a content provider via the internet outputs 
a request signal 1 3 1 to the certificate authority 1 10, receives a pair of keys and the certificate of the 
key which are generated in the certificate authority 1 1 0 in response to the registration request signal 
13 1 of the ISP, and the second table from the certificate authority 1 10. 

A licensed SDMI (secure digital music initiative) compliant module (LCM) 140 as a first 
content output unit outputs a registration request signal 141 to the internet service provider 130 in 
order to receive the digital contents, receives the public key and the data of the public key generated 
in response to the request signal 141, bypasses the data of the manufacturing key of the portable 
device 1 50 to the ISP 1 30, and encodes and outputs the manufacturer key detected from the second 
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table in response to the manufacturer key data. 

The portable device 1 50 as a second content output unit stores the manufacturer key and the 
manufacturer key data transferred from the certificate authority 1 10, outputs its manufacturer key 
to the internet service provider 130 through the LCM 140, and receives the manufacturer key data 
of the second table, which is encrypted, supplied from the LCM in order to judge if the stored 
manufacturer key is authenticated. 

The first table, as shown in FIG. 2, contains the manufacturer key data (Cert(MK PD )), the 
manufacturer key (MK PD ), and an identifier (ID MK ) corresponding to the manufacturer key data and 
the manufacturer key, and is stored in only the certificate authority 110. Further, the second table 
is generated from the certificate authority 1 1 0 and outputted to the internet service provider 1 30, and 
contains the identifier(ID MK ), data (ENC(MK PD , T)), and a token(T) which is encoded by the 
manufacturing key. 

At this time, the certificate authority 1 10 forms a first channel key(k) which can be shared 
with the internet service provider 1 30 in accordance with the registration request signal 1 3 1 inputted 
from the internet service provider 1 30, and outputs the first authentication qualification key and the 
first authentication qualification key data 1 1 1 which are encoded into the internet service provider 
130 through a secret channel formed by the first channel key(k). 

The first channel key is a key generated from encryption of the certificate authority 1 10 by 
using the data which the internet service provider 130 has. 

Here, we present the minimum substances (algorithms) that are needed for the insurance of 
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the security of LCM and PD. It is assumed that the content compressing and decompressing 
CODECs are built in each device in either SAV-form or H/W-form. 

For the LCM, Public Key Cryptosystem (PKC), Symmetric Key Encryption Algorithm, and 
Secure Chek-in/Chek-out System are explained hereinbelow. 

Public Key Cryptosystem (PKC) such as ECC, RSA,... (ECC is more preferable), is to be 
used for the secure key setup of LCM, the validity check of ISP f s Public Key Certificate, and the 
secure channel construction between ISP and LCM. Symmetric Key Encryption Algorithm such as 
SNAKE, is to be used for the content encryption, the authentication to a PD, and the secure channel 
construction between LCM and PD. Secure Chek-in/Chek-out System is to be presented in FIGS. 
5 and 6 for explaining how to construct this system and how to securely maintain it. 

For the PD, Public Key Cryptosystem (PKC), Symmetric Key Encryption Algorithm, and 
Manufacturer Key, MK PD are explained hereinbelow. 

Public Key Cryptosystem (PKC) is an optional to PD 150. 

Symmetric Key Encryption Algorithm such as SNAKE, is to be used for the content 
encryption, the authentication to the LCM, and the secure channel construction between PD and 
LCM. 

Manufacturer Key, MK PD , is the pre-set manufacturer key in a temper resistant area within 

the PD. 
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11. Please delete Figure 5.1-1 on page 11 and amend page 11 of the original 
specification, to read as follows. 




This is to be used for the secure registration of a PD to LCM. 

For the PM, there needs an apparatus or a pre-set special information within a PM to protect 
contents in it from the dead-copy to another PM. It is desirable, we think, to use the unique ID based 
approach, that is the method that the manufacturers of PM imbed a unique ID of each PM in the 
write-protected area of it while they manufacture it. This can be considered as a low cost method 
to dead-copy protection for the first generation PM. 



Regarding the initiation mechanism of the present invention, there are four registration 
mechanisms relative to ISPs, LCMs, and PDs. The four registration mechanisms include the 
registrations of the portable device manufacturers to the certificate authority, of ISP to the certificate 
authority, of LCM to ISP and of the portable device to LCM, and of multiple LCMs or multiple PDs. 
The manufacturers' registration to CA precedes ahead all the others. 
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The registration of the portable device manufacturer 120 to the certificate authority 1 10 is 
illustrated in FIG. 2. 

When the manufacturer 1 20 requests its registration to CA 1 1 0, CA 1 10 certifies it and then 
generates a manufacturer key, MK PD and make its certificate data, Cert CA (MK PD ), to deliver them to 
the manufacturer 120. At the same time CA 1 10 generates a random token, T, to make (or update) 
the Manufacturer Key Information Table (MKIT) for an ISP-registration. Once after the 
manufacturer 120 gets the data, {MK PD , Cert CA (MK PD )}, the manufacturer 120 can manufacture the 
portable devices by imbedding those secret data within a temper resistant area of the portable 
devices. 

Therefore, the portable devices 150 manufactured by the manufacturer 120 are authorized 
by the certificate authority 1 10 to store the downloaded, encrypted digital contents. 



Fig. 3 shows how for the ISP 130 to register to CA 110 and what information to get from 
CA 110. For an ISP to register to CA, firstly it generates its ephemeral private-public key pair 
{PrvKey eph , PubKey eph } to open a secure channel between CA and itself by EC_DH(CA, ISP) and 
provide a safe way to communicate each other without allowing an illegal copy of the downloaded 
information through the channel. A pair of keys and key data { PrvKey isp PubKey isp 
Cert CA (PubKey ISP ) } are generated and stored in the certificate authority 1 10, and two tables are 
formed in dependence with the manufacture key. The certificate authority 110 encrypts and 



Page 20 of 114 



PATENT 
P55690 

transmits the encrypted key and key data to internet service provider 130 through the channel in 
order to co-own the key and key data. Secondly the ISP 1 30 gets its semi-permanent private-public 
key pair {PrvKey, SP , Cert CA (PubKey !SP )} and the manufacturer key information table data through 
the secure channel. Where CA's certification to the ISP should be proceded ahead all these 
procedures. ISP's key pair should be securely stored. 



12. Please delete Figures 5.2-1 and 5.3-1 on page 12 and amend page 12 of the original 



( specification, to read as follows. 



The LCM's key pair should be securely stored, where the host's various system parameters 
may be used for this goal. 

Here the LCM registration mechanism to an ISP together with PD registration is described. 
As in Fig. 4, LCM gets the ISP's Public Key Information {PubKey ISP , Cert CA (PubKey ISP )} at first and 
verifies its validity by using the C A's public key Information which was already announced or preset 
within the LCM in a code-imbedded-like method. 



Q3T Please amend page 13 of the original specification, to read as followZJ 
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If the validity of the certificate for the ISP's public key is certified, the LCM 1 40 executes the 
handshaking protocol to get an ephemeral shared key by utilizing Elliptic Curve based (or other PKC 
based) Key Exchanging Protocol. Through this secure channel, the ISP can deliver in safe the LCM f s 
permanent private-public key pair for a static secure communication and a secure content transaction 
between the LCM and the ISP. When a request signal 1 5 1 is transmitted from the potable device 1 50 
to the LCM 1 40, the portable device 1 50 tosses the certificate data for its ID of the manufacturer key 
to the LCM 140. The LCM 140 sends them to its connected ISP 130 in the encrypted form, 
EC_ENC(PubKey ISR Cert CA (ID MK )). 

The internet service provider 130 decrypts the encrypted information and compares the 
decrypted information with the information of the second table. If the decrypted information is 
identical to the information of the second table, the internet service provider 1 30 encrypts the content 
of the table and transmits it to the LCM 140 in a secure manner. The LCM 140 decrypts the 
encrypted information to obtain the information of the token. For the LCM 140 and the portable 
device 1 50 to set up a shared secret key and to complete the portable device registration, the LCM 
140 randomly generates their static and secret channel key, CKp^^, and encrypts and sends 
ENC(T,CK PD .[ CM )||T*. Upon receiving these data, the portable device 1 40 can extract the token value 
T from T* by using the manufacturer key and, by using this token, the portable device 140 can also 
compute CK PD . 1CM and store it. As the portable device 140 securely stores this channel key, the 
portable device registration is finished. 

The channel key, CKp^^, maybe originated from portable device 1 50 instead of LCM 140. 
In this case the portable device 150 receives the data T* from the LCM and gets the token T by 
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decrypting T* with its manufacturer key. And then the portable device generates a random channel 
key CK PD . IXM to upload ENC(T, CK PWjCM ) to LCM. 

The part of the record in the manufacturer key information table (MKIT) of the LCM 140 
stays in encrypted form by using the LCM's secret key (this key may be LCM's public key). 

In practice, during the portable device 150 registration to LCM 140„ an update token data 
(UTD) of Right Management System-Data Base (RMS-DB) should be transferred from the portable 
device 1 50 to the LCM 140 (or from the LCM 140 to the portable device 1 50) together with CK PD _ 
lcm an d be set both in the RMS-DB and in the portable device. Therefore, all the units and terminals 
in this system are authorized to transmit and receive the encrypted digital contents between the units 
and terminals. 

As shown in FIG. 1, the architecture and the file format of the present invention can allow 
users to register their own limited number of LCMs or PDs. The number may be limited by ISP or 
by CA. 

To register a plurality of LCMs, since ISP maintains the private-public key pair of the firstly 
registered LCM of a user's multiple LCM's, ISP can securely deliver the same key pair to the another 
LCM of the user's. 

To register a plurality of portable devices, since LCM securely maintains the secret channel 
key between the LCM and PD, the LCM can securely deliver the same key pair to the another 
portable device of the user's in the same manner depicted in Fig.4. 

Fig. 5 shows exemplified implementation for the management rule of RMS-DB when a 
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content downloading occurs. 

To manage the information CTC= {Copyright, Transfer, Check-in/Check-out} , the LCM 1 40 
maintains the Right Management System Database 143, named RMS-DB in a secure manner. The 
Right Management System is described, focusing on the content transaction between LCM 140 and 



The RMS-DB contains an update token data area 143a, a title, CTC (copyright, transfer, 
check-in/check-out) field 143b, a playback control status data area 143c (PCS: the permitted times 
to play, the amnesty period,...). 



14. Please delete Figure 6.1-1 on page 14 and amend page 14 of the original 
specification, to read as follows. 



The part of the record in RMS-DB (in LCM) stays in encrypted form by using the LCM f s 
secret key such as CK PI>LCM . 

The UTD part 143a may have a few number of Updating Token Data depending on the 
number of a user's own PDs. 

The most important area in the database is the update token area 1 43a, and the update token 



PC 150. 
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area 1 43a has different values when the update token area 1 43a downloads a digital content from the 
LCM 140 to the portable device 1 50, or uploads the digital content from the portable device 1 50 to 
the LCM 140. At this time, the update token is transmitted to the LCM 140 through the portable 
device 150 to update the stored token in the LCM 140. 

A portable device import control is a layer existing in the LCM 140 to import SDMI 
Compliant contents from ISPs or to import non-SDMI Compliant outsource contents ( e.g. RedBook 
CD, DVD,...). Therefore, this layer should contain such capabilities as the followings: 

Trans-Coding to make PD decompress the input with its CODEC, 

Trans-Encrypting to make PD decrypt the input with its Encryption System, and 

Converting the input to SDMI Compliant the format. 

PD Interface has the following capabilities: 

Authenticating to PD, and 

opening a secure channel between LCM and PD. 

ISP Interface has the following capabilities: 

Authenticating to PD, and 

opening a secure channel between LCM and PD. 

Functional Components in PDFM has LCM Interface and Import Control within PDFM. 
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LCM Interface has the following capabilities: 
Authenticating to LCM, and 
opening a secure channel between PD and LCM. 



[Jp re 



15. Please delete a chart on page 15 and amend page 15 of the original specification, 
read as follows. -< — 



The import control within the portable device has the capability to import a outsource analog 
input and to make it fit to the SDMI Compliant file format. Where the converted SDMI Compliant 
content should have the binding information to the PD to be played only via the PD. 



FIG. 6 shows an exemplified file format. 



As shown in FIG. 6, the SDMI compliant file contains a plain header 610, a secret header 
620, and a file body 630. The plain header 6 1 0 comprises a title-ID 6 1 1 , a content description field 
(CDF) 612 (e.g., Title, Composer, Artist, Record-label), and an algorithm identifying field (AIF) 
613. The secret header 620 contains a device-identifier 621 (i.e., LCM_ID, PD__ID, or PM_ID), a 
source originator indicator field (SOI) 622 (i.e., ISP, LCM (CD-ripping, Audio input), PD (Analog 
input), or Kiosk), a copyright holder information field (CHI) 623, a right management field (RMF) 
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624, and a content encryption key 625. The file body 630 contains a symmetric key encryption of 
content by utilizing a secret key (ENC(k, Content)). 

Right management field 624 contains the Copy (e.g. , Copy-Never/Copy-Free/No-More-Copy 
mode), Check-In/Out mode, Transfer mode (i.e., transferable or not) and Playback Control Status 
(e.g., allowable number of times to be played (unlimited or n-times), expiration date, and amnesty 
period), which are to be encrypted by secret key of the device. 



The rules to transfer contents securely over ISP-LCM-PD-PM are as follows. 

When the ISP receives a content downloading request from the LCM, it confirms the LCM's 
ID and then downloads the content with the file format of FIG. 6 to the LCM. For the LCM to play 
the reached content, it follows the following steps in this order. 

First, the LCM finds out the encryption algorithm from the field AIF 613 in PH 610. 

Second, the fields in the secret header 620 are recovered by using the found out encryption 
algorithm and LCM's secret key (private key) to recover the fields in SH. 

Third, the Device-ID field 621 is compared with the ID of the LCM to check if there is 
correspondence between the two. 

In the case of correspondence, the copy control status from the RMF data, the playback 




t. Please amend page 16 of the original specification, to read as follows, 
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control status, and the transfer control status are identified to register them in the database(RMS-DB) 
which the LCM 140 has. 

After the above process is performed, the digital content encryption key is extracted by using 
a CEK field, and the encoded digital content is interpreted by using the encryption key. 

If any of the above lists is not violated, the music can be played. 

If it is needed to modify the RMF624, especially the Playback Control Status (PCS), the 
LCM 140 has to update the data both in the file and in the RMS-DB following the controlling 
direction. 

In the case of changing the RMF 624 of the file formats, in particular the playback control 
status, the LCM 140 replaces the playback control state data in two places of the database(RMS-DB) 
and the file format with desired data. 

The procedure for the LCM 140 to download the content to its portable device 1 50 includes 
the following steps: 

First, the LCM 140 requests the PD-ID and UTDto the portable device 1 50. 

Second, the portable device 150 sends the ENC (CK PD . I CM , UTD II PD-ID) to the LCM 140. 

Third, the LCM 140 recovers the PD-ID and confirms it. 

Fourth, the LCM 1 40 recovers the UTD and the fields in the secret header 620 and compares 
them with those in its RMS-DB. If UTD is correct and if any alteration of RMF is needed, the LCM 
updates the contents of RMF both in RMS-DB and in the file format. 
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Fifth, the LCM 1 40 updates UTD of RMS-DB with a newly generated UTD, and ENC (CK PD _ 
i, UTD*) is to be sent to the PD. 

Sixth, where the Transfer Control Status field has the three types, "Transfer", "Transferred", 



and "Transfer-non", and the Transfer Control Status indicates "Transfer", "Transfer" is replaced with 



"Transferred" in the Transfer Control Status field in RMS-DB, but not in the file format. Where the 



Transfer Control Status field has the three types, "Transfer", Transferred", and "Transfer-non". 

Seventh, if the Copy Control Status (CCS) indicates M Check-in",it is replaced by "Check-out" 
in the Copy Control Status field both in RMS-DB and in the file format. 

Eighth, if the Copy Control Status (CCS) indicates "Copy-Never", the content downloading 
to the portable device is denied. 

If any of the above lists is not violated, the content is downloaded to the PD. 

Hereinafter the process of the digital contents between the portable device 150 and the 
portable recording medium 160 as a content storage medium for preventing an illegal copy in 
downloading the digital content, which the portable device has, to the portable medium 160 is 
explained. 

Firstly, if there is its owned ID in the portable medium 1 60, the portable device 1 50 records 
the digital contents which are encrypted by using the ID. 

Secondly, if there is its owned ID in the portable medium 160, the portable device 140 
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records the digital contents which are encrypted by using randomly generated key. The randomly 
generated key T is encrypted by using a key, S, of the general secret key which is predetermined by 
the manufacturer 120 of the portable device 1 50. 



17. Please delete Figure 9-1 on page 17 and amend page 17 of the original specification 



Where there is its own ID in the portable medium 160, all contents within the portable 
medium can be played by all the portable devices, but, where there is not its own ID, all contents 
within the portable medium 160 can be played only by the portable devices produced by the 
manufacturers which adopted this system. Anyway it is certain that this system can support the 
portability of contents via the portable media. 

As previously we defined, the 'Transferability" is a different concept from the "Portability" 
of a content. The main difference is that the content with "Transferability" can be not only played 
in any portable devices but also uploaded to any LCMs, but not in the case of "Portability". Since 
the present system has and manages the Transfer Control Status field both in the RMS-DB and in 
the file format, the present system can support the transferability of the content. If there is marked 
"Transfer" in the field of a content and if the content is just downloaded to the portable device, then 



The encrypted T is recorded on the hidden area of the PM. 




^Jp read as follows. 
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the LCM downloads it to the portable device and replaces "Transfer" by "Transferred" in the 
relevant field of RMS-DB. Then the content, which has been downloaded to the portable device, 
can no longer be played in the LCM until it is uploaded to the LCM again, but the downloaded 
content in the portable medium 160 can be played by any portable device and can be uploaded to 
another LCM via the portable device. 

If the Copy Control Status (CCS) of a content contained in a portable medium indicates 
"Copy-Free", the content can be uploaded to any LCMs. 

As shown in Fig. 7, various inputs such as originated from RedBook CD, Audio CD, Super 
Audio CD, DVD Disk, and analog Device are allowable to LCM optionally. An analog input to PD 
is also allowable. The secure import control for those several inputs to LCM or to PD is presented 
hereinbelow. 

The audio signal inputted through the input devices is inputted to the LCM 1 40, and encoded 
according to a system supported in the present invention, and then transmitted to the portable device 
150, or transmitted to the portable medium 160 to be reproduced through the portable device 150. 

The kiosk 1 70 generates a registration request signal for selling an encoded digital content 
by the internet service provider 1 30 through the LCM 140. Therefore, the internet service provider 
130 provides to the kiosk 170 the portable medium 160 having digital contents encoded by the 
system supported in the present invention according to the registration request signal, and the kiosk 



Page 31 of 114 



PATENT 
P55690 

receives fees from users and transmits the digital contents stored in the portable medium 1 60. Kiosk 
1 70 is a store or vending machine selling a recording medium or digital content which is reproduced 
in this system. Machine on Kiosk is regarded as a personal computer having an interface of the 
digital content portable medium 1 60. The recording medium interface can be used by anyone having 
a supply agreement with an intellectual property right owner or the digital internet service provider. 

FIG. 8 is a view for showing an output source of Fig. 7 capable of being additionally 
connected to the embodiment of the present invention. 

As shown in Fig. 8, the host device, in which the LCM module exists, has at least the 
following three layers (two of these exist in the LCM module). 



f 18. Please delete Figure 9.1-1 on page 18 and amend page 18 of the original J 

/ specification, to read as follows. 



Authenticated Input API 810 has the roles of confirming the validity of the input and 
extracting some required information to convert the input into a SDMI Compliant format. 

With respect to the role of confirming the validity of the input, if the input data have a 
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watermark, then this API should be able to detect it. 

If the input data take an encrypted (or scrambled) form, then this API should be able to 
extract its encryption key and the encryption (or scrambling) algorithm. 

If the input data do not take any protected form, then the API should confirm the validity of 
written format of the media containing the input data. 



The API checks if an input device and data inputted from the input device are suitable for the 
system and transmits the following data to the import control layer 820. 



The required data for the API to pass over to the Import Control Layer are as follows: 
Information of the media (source) type {e.g., Audio CD, DVD Audio, Information of the originator 
of the input content, Information of the content (e.g., Title, if any, Player, Artist), Information of the 
encryption algorithm if any, Information of the encryption key if any. 

The Import Control Layer 820 gets a bundle of information from the Authenticated Input API 
and reconstructs the input content to meet a SDMI Compliant file format by following the rules listed 
below: 




19. Please amend page 19 of the original specification, to read as follows 




Copy Control Status is marked as "Copy-Never" or "Check-in/Check-out" (optionally). 
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Playback Control Status is marked as "Times to playback = infinite or N" (N: optional). 
Transfer Control Status is marked as "Transfer-Non". 

Mark the "LCM-ID" into the SOI field and Device-ID field of SH (Secret Header) 
If the input content is not encrypted, a random key is generated and encrypts the input 
content by the random key. 

If the input content takes an encrypted form by other encryption algorithm different from the PD's, 
then this layer trans-encrypts the content to be played in the PD. 
The secret header part is encrypted by LCM's public key. 

PD Interface layer 830 authenticates the connected portable device 1 50 by checking whether 
the portable device 150 has its correct ID and the secret channel key, CK P[>LCM . The Kerberos 
Authentication Protocol maybe used (refer to: A. J. Menezes, P.C. Oorschot, and S.A. Vanstone, 
Handbook of Applied Cryptography, pp. 401-403, CRC Press, 1996). 

The Import Control Layer (ILC) 860 within the portable device 150 makes a SDMI 
Compliant compressed digital content from the analog input by following the rules listed below: 

Upon reception of each frame of the analog input, the ICL encodes the frame and by a 
randomly generated key. If all the frames have been encrypted, the next steps are followed. 

Copy Control Status is marked as "Copy-Never" or "Check-in/Check-out" (optionally) 

Playback Control Status is marked as "Times to playback = infinite or N" (N: optional). 

Transfer Control Status is marked as "Transfer-Non". 
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The "PD-ID" is marked into the SOI field and Device-ID field of SH (Secret Header)]. 

The portable device encrypts the secret header part by channel key. 

If the converted SDMI Compliant content from the analog input has its SOI field 622 of the 
Secret Header with marked "PD-ID" , then the procedure of writing the content on a portable medium 
(PM) does not use the unique ID of the PM. This means that such content as made from an analog 
input to a portable device is not allowed to have the "Portability". 



Hereinafter, the copy protection scheme for portable media is described. 

PM may optionally support unique ID for first Generation PM. If the unique ID is not 
supported, the physical address of a bad sector of the portable medium is used instead. If unique ID 
is supported, it should be one-time writeable during the manufacturing stage only, and readable only 
by the portable device with a special command. 

Channel key (CK) is a shared key between LCM and PD. To support portability, CK is not 
considered as input to function f(). If CK is included, it provides additional security to the content 




Please delete the entirety on page 20 of the original specification 
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stored in PM. CK may take various forms depending on the application usage and right management 
rules. 

With respect to a physical address of bad sector of a portable media, P, the usage of P 
prevents the playback of illegally copied content from PM to PM by simple "dead-copy". 

Referring to a spared area, a special command known only to the manufacturer needs to be 
known to access this area. 

The copy protection system for the portable media is shown in FIG. 9. 

First, the portable device 1 50 and the LCM 140 share a channel key to form a secure channel 
between them. 

The portable device 1 50 receives as inputs and function processes a physical address of a bad 
sector of the portable medium 1 60, a random number, and a secret channel key which is transmitted 
from the LCM 140 and stored in the LCM 140. With the processed value, the portable device 150 
encrypts a header of the digital contents and transmits it 1 60. Hash function or one way function can 
be used for the function process. At this time, what generates the key for encryption is the function 
process means 149. 

Function process means 149 receives as an input the physical address of the bad sector 
transmitted from the portable medium 160 and receives as an input the random number through the 
random number generating means (RNG) 159. The random number is also transmitted and stored 
in a spare area of the portable medium 160. 

The portable medium 160 transmits the physical address of the bad sector, stores a random 
number generated in the portable device 1 50 as an input in the spare area, and stores as sector data 
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the encrypted header information encrypted by the processed value and the encrypted digital content 
inputted through the portable device 1 50. 
<""| It is optional to encrypt the header of the digital content by function processing after receiving 

all of the commonly owned key, random number, and the physical address of the bad sector or one 
of the commonly owned key, random number, and the physical address of the bad sector. 

The digital content can be downloaded to the portable medium 160 through the portable 
device 150 or directly from the LCM 140. 

Even if the portable medium is copied to another portable medium, the digital content in the 
portable medium cannot be reproduced from the portable medium. Therefore, this invention 
provides the effect on basically protecting illegal copy. 



As stated above, the preferred embodiments of the present invention are shown and 
described. Although the preferred embodiments of the present invention have been described, it is 
understood that the present invention should not be limited to these preferred embodiments but 
various changes and modifications can be made by one skilled in the art within the spirit and scope 
of the present invention as hereinafter claimed. 



22. Please delete pages 22 to 45 of the original specification (i.e., pages 1 to 22 
English translation thereof). 
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